GIAC Security Leadership Certification (GSLC) — Question 50

How should Learning Objectives be developed in regard to an organization’s managed risks?

Answer options

• A. A single learning objective document should be developed to address company goals for all managed risks
• B. A learning objective document should be developed for each department listing their managed risks
• C. An individual learning objective document should be developed for each managed risk
• D. A learning objective document should be developed for each threat agent that poses a risk

Correct answer: B

Explanation

The correct answer, B, emphasizes the importance of tailoring learning objectives to the specific managed risks of each department, which allows for relevant and actionable training. Answer A is too broad as it does not consider departmental nuances, C focuses too much on individual risks rather than departmental alignment, and D incorrectly suggests that threat agents should be the basis for learning objectives rather than the managed risks themselves.